Lucene search
MitreCVELIST:CVE-2017-9248HistoryJul 03, 2017 - 7:00 p.m.
CVE-2017-9248
2017-07-0319:00:00
mitre
www.cve.org
Telerik.Web.UI.dll in Progress Telerik UI for ASP.NET AJAX before R2 2017 SP1 and Sitefinity before 10.0.6412.0 does not properly protect Telerik.Web.UI.DialogParametersEncryptionKey or the MachineKey, which makes it easier for remote attackers to defeat cryptographic protection mechanisms, leading to a MachineKey leak, arbitrary file uploads or downloads, XSS, or ASP.NET ViewState compromise.
Related
checkpoint_advisories
checkpoint_advisories
Telerik Web UI Information Disclosure (CVE-2017-9248)
2019-03-14 00:00:00
nvd
nvd
CVE-2017-9248
2017-07-03 19:29:00
cve
cve
CVE-2017-9248
2017-07-03 19:29:00
cert
cert
Telerik Web UI contains cryptographic weakness
2017-07-25 00:00:00
kitploit
kitploit
malwarebytes
malwarebytes
Credit card skimmer targets ASP.NET sites
2020-07-06 16:36:50
hackerone
hackerone
U.S. Dept Of Defense: RCE on https://âââââ/ Using CVE-2017-9248
2019-02-06 02:15:44
exploitpack
exploitpack
nessus
nessus
Telerik UI for ASP.NET AJAX Cryptographic Weakness
2017-06-30 00:00:00
attackerkb
attackerkb
CVE-2017-9248
2017-07-03 00:00:00
veracode
veracode
Information Disclosure
2020-06-25 09:14:10
cisa_kev
cisa_kev
prion
prion
Default credentials
2017-07-03 19:29:00
ics
ics
Iranian Advanced Persistent Threat Actors Threaten Election-Related Systems
2020-10-22 12:00:00
Threat Actors Exploit Progress Telerik Vulnerabilities in Multiple U.S. Government IIS Servers
2023-06-15 12:00:00
Hitachi ABB Power Grids eSOMS Telerik
2021-03-18 12:00:00
exploitdb
exploitdb
githubexploit
githubexploit
Exploit for Deserialization of Untrusted Data in Telerik Ui For Asp.Net Ajax
2020-05-29 07:29:52
Exploit for Inadequate Encryption Strength in Telerik Ui For Asp.Net Ajax
2018-01-09 13:53:57